[OpenSSL] /etc/ssl/cert.pem not honoured by default
Dan Lukes
dan at obluda.cz
Fri Dec 18 12:56:05 UTC 2015
On 18.12.2015 13:25, Matthew Seaman wrote:
> Generally I find that setting 'WITH_OPENSSL_PORT=yes' is the route to crypto happiness in the ports.
Definitely. But beware of applications using system Kerberos libraries
(it use system's OpenSSL).
If an application import library A that depend on system's OpenSSL and
library B that depend on port's OpenSSL the troubles are imminent.
Dan
More information about the freebsd-security
mailing list